Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
File: Mnib05LhxcabdCDMA2gDrxJYzvk.mft (raw, json)
Hash identifier: 4AhqgO842isygtikcTWaPfH/oFH9xdLGr6p0UuAyvqQ=
Subject key identifier: 8F:5F:77:77:73:FB:EC:C2:7D:45:BB:0D:5F:B8:8A:40:CF:B0:0D:C8
Authority key identifier: 32:78:9B:D3:92:E1:C5:C6:9B:74:20:CC:03:68:03:AF:12:58:CE:F9
Certificate issuer: /CN=32789bd392e1c5c69b7420cc036803af1258cef9
Certificate serial: 019769CEF474787C5EF94599D27FEEC76E51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
Manifest number: 06DF
Signing time: Fri 13 Jun 2025 15:01:00 +0000
Manifest this update: Fri 13 Jun 2025 15:01:00 +0000
Manifest next update: Sat 14 Jun 2025 15:01:00 +0000
Files and hashes: 1: Mnib05LhxcabdCDMA2gDrxJYzvk.crl (hash: z4ExJmqacaISPKcd09gePaihmImGO2PzBVxCUeDmo94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:f4:74:78:7c:5e:f9:45:99:d2:7f:ee:c7:6e:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32789bd392e1c5c69b7420cc036803af1258cef9
Validity
Not Before: Jun 13 15:01:00 2025 GMT
Not After : Jun 14 15:01:00 2025 GMT
Subject: CN=8f5f777773fbecc27d45bb0d5fb88a40cfb00dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4d:c4:8f:ec:ba:28:be:89:11:bf:7e:4b:7a:
9f:f1:9e:9c:eb:e8:94:85:f8:62:35:8d:70:f0:87:
90:db:b2:a5:a0:91:19:68:b8:b0:bb:78:26:70:6b:
51:17:4b:3f:6e:95:55:20:bf:be:03:9e:df:3c:94:
e1:03:00:bd:c0:fa:81:64:e9:0f:0a:cf:af:6b:12:
21:a3:4e:5f:ad:eb:d5:4c:70:79:db:3d:d0:10:32:
93:6a:a3:0d:e6:78:33:f1:55:42:12:06:8c:8d:78:
ed:0f:5a:d7:1c:55:82:b1:45:4f:b9:01:53:1b:c9:
87:0b:f3:04:39:aa:4a:8a:ea:83:50:bc:ed:56:bb:
90:2e:3c:36:0b:3d:86:e5:13:aa:e8:5a:f4:5d:3a:
78:f1:b4:60:2a:2d:4a:36:39:69:84:9c:5b:b7:2b:
55:75:8d:5b:e1:cc:92:e3:56:42:95:1b:30:fe:6a:
9a:06:11:bc:51:8a:6f:e4:ae:ab:f6:0e:d8:e5:7e:
e9:44:5d:56:79:6f:44:24:87:e6:f9:41:68:ff:0d:
e7:e6:69:66:2e:62:dc:27:45:73:57:ae:24:e2:cd:
0c:35:11:7b:71:cf:fe:11:b6:b2:f1:4b:d8:af:25:
8e:78:4c:f9:14:ef:20:46:34:52:47:73:70:62:92:
1a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5F:77:77:73:FB:EC:C2:7D:45:BB:0D:5F:B8:8A:40:CF:B0:0D:C8
X509v3 Authority Key Identifier:
keyid:32:78:9B:D3:92:E1:C5:C6:9B:74:20:CC:03:68:03:AF:12:58:CE:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2c:5c:64:94:40:c3:f5:10:10:7b:77:b6:48:05:15:d7:98:
ef:a9:c0:4c:95:26:7a:23:a4:ba:79:78:fe:61:bb:65:b5:cd:
c9:12:62:a5:bc:9e:b1:a5:6e:fc:97:0f:8c:b7:c4:1c:ce:46:
75:69:1b:23:8d:e1:22:ff:69:41:43:e6:5f:8d:98:1a:37:e6:
55:08:f7:6e:bf:b3:91:3d:1a:14:46:c9:bd:26:67:67:5d:64:
c6:59:ea:b7:86:3d:2a:ac:29:98:07:0b:91:d4:84:29:e8:76:
4a:49:b3:ec:e4:e9:93:5e:fd:03:2d:14:28:39:2b:0d:7b:3d:
6f:56:2b:f1:67:c3:04:c2:fa:50:72:55:bd:ad:8e:42:1b:00:
a8:d9:67:32:1f:bf:dd:fd:4b:b6:26:f1:59:48:cc:da:52:01:
8d:ff:b8:cc:d3:1b:86:cd:47:9a:e3:29:34:2d:0f:69:f6:a6:
c9:67:bb:62:b2:a2:84:4a:d2:6d:7d:0d:c3:ab:3a:27:06:85:
06:1e:0a:4d:fc:67:19:b2:e6:2f:65:09:c5:a0:c2:70:77:12:
8d:24:08:bd:69:77:9e:90:e1:e5:a6:4f:02:45:89:81:8a:80:
40:75:c9:12:ce:c2:ac:b2:ff:ab:53:3d:c4:cc:44:9b:56:27:
da:07:bb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:42 2025 by rpki-client